CVE-2021-47768

MEDIUM

ImportExportTools NG 10.0.4 - Stored Cross-Site Scripting in Email Export Module

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47768. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary This advisory details an HTML injection vulnerability in ImportExportTools NG 10.0.4, where unsanitized subject content in exported HTML files can execute malicious payloads. The writeup includes technical details, a proof-of-concept scenario, and mitigation recommendations.

Description

ImportExportTools NG 10.0.4 contains a persistent HTML injection vulnerability in the email export module that allows remote attackers to inject malicious HTML payloads. Attackers can send emails with crafted HTML in the subject that execute during HTML export, potentially compromising user data or session credentials.

Exploits (1)

exploitdb WRITEUP
by Vulnerability-Lab · textwebappsmultiple
https://www.exploit-db.com/exploits/50496

This advisory details an HTML injection vulnerability in ImportExportTools NG 10.0.4, where unsanitized subject content in exported HTML files can execute malicious payloads. The writeup includes technical details, a proof-of-concept scenario, and mitigation recommendations.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: ImportExportTools NG v10.0.4 (Thunderbird Addon)
No auth needed
Prerequisites: Victim must export emails to HTML · Attacker must send a crafted email with malicious subject
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 6.1
EPSS 0.0032
EPSS Percentile 23.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
cleidigh/importexporttools_ng 10.0.4
Published Jan 15, 2026
Tracked Since Feb 18, 2026